Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/97719B20C8A411EF816FFE6C762E951A.roa
File: 97719B20C8A411EF816FFE6C762E951A.roa (raw, json)
Hash identifier: PMWOOuPUUepfZi5mXtMjfnq1pSZX/5a/7AklvNJyV/g=
Subject key identifier: 4C:62:53:5B:03:B1:A0:48:EA:CA:71:61:96:A1:99:10:C3:3D:70:1C
Certificate issuer: /CN=F368F2D0AF/serialNumber=25D63E08EABE7CFA6785D4C1D6D34116DE15B3DC
Certificate serial: 01313C
Authority key identifier: 25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
Authority info access: rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/97719B20C8A411EF816FFE6C762E951A.roa
Signing time: Thu 02 Jan 2025 00:57:51 +0000
ROA not before: Thu 02 Jan 2025 00:00:48 +0000
ROA not after: Fri 12 Dec 2025 00:00:48 +0000
asID: 984
IP address blocks: 154.218.59.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 78140 (0x1313c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AF
Validity
Not Before: Jan 2 00:00:48 2025 GMT
Not After : Dec 12 00:00:48 2025 GMT
Subject: CN=6775e48f-5802
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:8b:04:5c:66:ee:1c:36:7b:c2:24:7b:b9:dd:
7d:68:9e:5d:4e:ae:31:03:12:4e:12:e9:d3:54:4c:
12:58:c6:93:e6:0b:46:70:02:6f:e8:c9:8a:ad:5c:
48:f6:4c:94:7f:29:66:3d:24:fb:89:7d:eb:c5:39:
65:c8:fb:fb:10:f1:bc:0e:59:1c:fd:0b:05:69:91:
98:f6:b7:80:de:e8:b9:1f:4b:de:6e:46:10:57:41:
85:aa:e6:2d:8f:ed:32:51:aa:ad:fa:90:b9:28:8e:
9e:97:6f:ca:3c:b6:6c:4b:20:36:fd:f3:af:6d:fb:
43:7a:a1:ff:06:ae:57:59:3d:c7:02:c5:05:9c:fb:
74:0c:d2:74:d6:3d:0b:de:33:a2:51:92:4d:9e:3f:
34:ec:a3:22:bd:74:5b:8b:14:8c:e5:41:22:ad:71:
10:fe:43:0a:c2:55:6d:86:86:57:ef:9a:4e:70:70:
ca:5c:e5:17:c8:f6:06:4e:d8:6f:29:0a:24:e2:01:
dd:fd:78:17:5b:1f:31:0a:50:ef:03:5e:51:7f:10:
55:fb:02:6e:26:17:65:1f:37:14:20:20:6f:ed:5b:
5a:0f:5e:11:dd:14:79:61:d4:21:20:ae:7e:e5:fb:
e7:b4:22:d5:97:c0:6e:ea:5b:ad:c3:6d:18:f2:fa:
ab:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:62:53:5B:03:B1:A0:48:EA:CA:71:61:96:A1:99:10:C3:3D:70:1C
X509v3 Authority Key Identifier:
keyid:25:D6:3E:08:EA:BE:7C:FA:67:85:D4:C1:D6:D3:41:16:DE:15:B3:DC
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/JdY-COq-fPpnhdTB1tNBFt4Vs9w.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/afrinic/JdY-COq-fPpnhdTB1tNBFt4Vs9w.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/7F4A98EA6E0511E89C0D6E4BF8AEA228/97719B20C8A411EF816FFE6C762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
154.218.59.0/24
Signature Algorithm: sha256WithRSAEncryption
58:49:ac:48:d0:e6:c5:66:14:cd:39:0d:00:69:99:37:f2:23:
7d:f1:3e:e0:be:0a:cb:18:25:a9:2b:11:ec:52:aa:7f:10:ea:
62:fa:11:8d:fe:4a:17:7e:bc:58:83:ec:cc:06:90:67:c4:51:
0b:98:76:28:46:9c:fb:39:d5:eb:60:c2:85:2b:6a:61:27:7e:
c1:d6:92:5b:c1:6c:fb:82:04:27:d4:d5:e4:f1:67:a6:77:b3:
a8:c6:37:e2:c4:22:a9:71:a6:65:54:79:f0:5f:40:23:b5:ae:
31:99:25:e9:2f:e5:b5:20:b8:5b:bc:5d:36:18:77:1e:ca:a1:
8e:bf:59:54:f6:2e:40:d1:2f:63:ab:8a:6a:16:70:8b:a2:08:
95:14:b8:b1:dc:a1:3b:5b:f5:58:f6:4f:98:d5:77:f8:84:21:
6a:96:db:a6:e6:05:f2:fb:9c:a8:5c:65:de:b1:52:2f:b2:6b:
15:36:fb:72:34:98:af:dd:a4:43:b6:4f:1d:be:1c:04:3a:33:
1f:79:d4:db:61:ec:df:70:59:a2:0b:48:16:5d:9f:0b:b0:3c:
fe:1c:05:ab:8e:c8:bd:a1:2b:a7:c2:d7:4e:8c:7a:fd:88:97:
9f:c2:36:af:43:bb:fb:01:0c:4d:7a:31:25:01:59:e3:92:38:
d3:aa:48:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 10:52:49 2025 by rpki-client